You need an SSL enabled web server to encrypt the data stream between the
client and the server.
I'm sure most baloney passwords for things like Yahoo and Excite email are
negotiated via regular HTTP. You could (theoretically) have an applet, or
maybe even some JavaScript (not sure if JavaScript can do this), encrypt the
password using something like an MD5 algorithm, and send that back to the
server over regular HTTP. Then you'd decrypt the password on the other
side.
Scott Stirling
Allaire Corporation
JRun: http://www.allaire.com/developer/jrunreferencedesk/
Allaire Knowledge Base:
http://www1.allaire.com/Support/KnowledgeBase/SearchForm.cfm
> -----Original Message-----
> From: Bragg, Casey [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 21, 1999 4:33 PM
> To: [EMAIL PROTECTED]
> Subject: [JSP-INTEREST] Secure passwords
>
>
> I'm looking for any ideas on how to communicate a password
> (entered into a browser form on a jsp page) to a servlet or
> bean securely.
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
FAQs on JSP can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
